Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
7.2
CVSSv3
CVE-2016-1000119
Published: 21/10/2016 Updated: 02/05/2018
CVSS v2 Base Score: 6.5 | Impact Score: 6.4 | Exploitability Score: 8
CVSS v3 Base Score: 7.2 | Impact Score: 5.9 | Exploitability Score: 1.2
VMScore: 578
Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P
Subscribe to Catalog
Vulnerability Summary
SQLi and XSS in Huge IT catalog extension v1.0.4 for Joomla
Vulnerable Product
Search on Vulmon
Subscribe to Product
huge-it catalog 1.0.4
Exploits
Exploit DB: Huge IT Joomla Catalog Extension 1.0.4 XSS / SQL Injection
Huge IT Joomla Catalog extension version 104 suffers from cross site scripting and remote SQL injection vulnerabilities ...
References
CWE-79
CWE-89
http://www.vapidlabs.com/advisory.php?v=167
http://extensions.joomla.org/extensions/extension/e-commerce/shopping-cart/catalog
http://www.securityfocus.com/bid/92185
https://nvd.nist.gov
https://packetstormsecurity.com/files/138066/Huge-IT-Joomla-Catalog-Extension-1.0.4-XSS-SQL-Injection.html
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started